202.108.1.142 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Beijing Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Web App Attack	2019-07-09 06:16:50
attack	Scanning and Vuln Attempts	2019-07-05 22:32:22

相同子网IP讨论:

IP	类型	评论内容	时间
202.108.140.114	attackbotsspam	Unauthorized connection attempt detected from IP address 202.108.140.114 to port 1433 [T]	2020-05-20 12:43:37
202.108.140.114	attackbotsspam	Port probing on unauthorized port 1433	2020-02-09 10:20:23
202.108.140.114	attackspam	Unauthorized connection attempt detected from IP address 202.108.140.114 to port 1433 [J]	2020-02-04 01:27:05
202.108.140.114	attackbots	1433/tcp 1433/tcp 1433/tcp... [2019-11-13/2020-01-10]19pkt,1pt.(tcp)	2020-01-10 19:35:34
202.108.140.114	attack	Unauthorized connection attempt detected from IP address 202.108.140.114 to port 1433	2020-01-02 22:16:12
202.108.140.114	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-27 01:09:46
202.108.199.62	attack	10 attempts against mh-pma-try-ban on comet.magehost.pro	2019-12-06 09:10:32
202.108.140.114	attackbots	" "	2019-11-09 03:48:38
202.108.1.120	attackbotsspam	Automatic report - Web App Attack	2019-07-13 02:18:45
202.108.1.120	attackspam	Automatic report - Web App Attack	2019-07-10 08:25:57
202.108.1.120	attackspambots	HTTP/80/443 Probe, BF, WP, Hack -	2019-07-09 01:54:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.108.1.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15777
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.108.1.142.			IN	A

;; AUTHORITY SECTION:
.			1501	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 05 22:32:13 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

142.1.108.202.in-addr.arpa domain name pointer xk-1-142-a8.bta.net.cn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.1.108.202.in-addr.arpa	name = xk-1-142-a8.bta.net.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.127.99.45	attackspam	$f2bV_matches	2019-08-20 05:44:02
142.93.114.123	attackbotsspam	Aug 19 11:32:16 eddieflores sshd\[23432\]: Invalid user ec2-user from 142.93.114.123 Aug 19 11:32:16 eddieflores sshd\[23432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.114.123 Aug 19 11:32:18 eddieflores sshd\[23432\]: Failed password for invalid user ec2-user from 142.93.114.123 port 55342 ssh2 Aug 19 11:36:23 eddieflores sshd\[23887\]: Invalid user hadoop from 142.93.114.123 Aug 19 11:36:23 eddieflores sshd\[23887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.114.123	2019-08-20 05:41:51
218.92.0.197	attackbots	Aug 20 00:00:07 ArkNodeAT sshd\[11138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.197 user=root Aug 20 00:00:09 ArkNodeAT sshd\[11138\]: Failed password for root from 218.92.0.197 port 50360 ssh2 Aug 20 00:01:01 ArkNodeAT sshd\[11391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.197 user=root	2019-08-20 06:04:52
43.248.20.129	attack	Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-08-20 05:54:20
45.55.157.147	attack	$f2bV_matches	2019-08-20 05:55:47
79.118.154.22	attackspam	Malicious user agent	2019-08-20 05:36:38
187.37.0.65	attackspam	Aug 19 23:06:12 lnxded63 sshd[25036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.37.0.65	2019-08-20 05:30:16
164.132.24.138	attackbots	Aug 19 23:13:31 SilenceServices sshd[8207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 Aug 19 23:13:34 SilenceServices sshd[8207]: Failed password for invalid user harvard from 164.132.24.138 port 49715 ssh2 Aug 19 23:21:49 SilenceServices sshd[13465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138	2019-08-20 05:36:00
169.197.97.34	attackbotsspam	Automated report - ssh fail2ban: Aug 19 23:44:53 wrong password, user=root, port=46082, ssh2 Aug 19 23:44:57 wrong password, user=root, port=46082, ssh2 Aug 19 23:45:02 wrong password, user=root, port=46082, ssh2	2019-08-20 05:52:46
43.252.36.98	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-20 05:26:08
80.237.68.228	attackbotsspam	Aug 19 17:57:51 vps200512 sshd\[14605\]: Invalid user 1234 from 80.237.68.228 Aug 19 17:57:51 vps200512 sshd\[14605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.237.68.228 Aug 19 17:57:54 vps200512 sshd\[14605\]: Failed password for invalid user 1234 from 80.237.68.228 port 60158 ssh2 Aug 19 18:02:09 vps200512 sshd\[14694\]: Invalid user charlene from 80.237.68.228 Aug 19 18:02:09 vps200512 sshd\[14694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.237.68.228	2019-08-20 06:06:18
45.230.80.11	attackspambots	SMTP-sasl brute force ...	2019-08-20 06:04:26
123.31.47.20	attackspam	Aug 19 11:29:34 hcbb sshd\[8985\]: Invalid user noah from 123.31.47.20 Aug 19 11:29:34 hcbb sshd\[8985\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.47.20 Aug 19 11:29:36 hcbb sshd\[8985\]: Failed password for invalid user noah from 123.31.47.20 port 56416 ssh2 Aug 19 11:36:17 hcbb sshd\[9576\]: Invalid user smbguest from 123.31.47.20 Aug 19 11:36:17 hcbb sshd\[9576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.47.20	2019-08-20 05:44:20
91.161.130.14	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-08-20 05:43:20
188.166.246.46	attackbots	Aug 20 00:51:45 yabzik sshd[6784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.246.46 Aug 20 00:51:47 yabzik sshd[6784]: Failed password for invalid user mark from 188.166.246.46 port 46648 ssh2 Aug 20 00:56:21 yabzik sshd[8404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.246.46	2019-08-20 05:58:33

最近上报的IP列表

46.101.142.238	118.100.222.11	105.112.96.22	198.1.114.144
58.47.49.115	87.10.205.207	200.23.235.63	106.12.196.196
137.59.213.6	45.135.139.222	208.5.43.161	4.211.243.78
217.227.34.41	157.48.91.74	88.230.98.6	93.243.122.77
223.101.36.163	209.74.152.35	103.91.94.237	200.139.158.232